How to reshape the Crowdstrike 78 minutes of cybersecurity for the institution

We also wrote in The initial analysis of the crowd accidentOn July 19, 2024, interruption was a flagrant reminder of the importance of Internet flexibility. Now, one year, both of them Crowdstrike The industry witnessed a major shift, as the catalyst was 78 minutes driven that changed everything.

“The first anniversary on July 19 is a moment that strongly affected our customers and partners and has become one of the most specific chapters in the history of Crowdstrike”. Blog In detail the company’s trip for a year towards enhancing flexibility.

The accident that shook the global infrastructure

The numbers remain realistic: Update 291 channel defective, published at 04:09 World time and returns after only 78 minutes, reaching 8.5 million Windows systems around the world. Insurance estimates put losses at 5.4 billion dollars for the best 500 American companies alone, as a special hard flight has been canceled with 5,078 flights worldwide.

Steffen Schreier, the first vice president of the product and the wallet in TelesignAnd the company Proximus Global, which captures the cause of this accident after a year: “After a year, the Crowdstrike incident is not mentioned, but it is impossible to forget. Update routine programs, published without any malicious attack and retreated in only 78 minutes, is still able to download the critical infrastructure around the world.

His technical analysis reveals uncomfortable facts about modern infrastructure: “This is the true call for waking up: even companies that have strong practices, a rapid decline, and a rapid decline, cannot exceed the risks determined by the same infrastructure that allows something to spoil something in the field of delivery.

Understand what happened

Crodstrike’s radical cause analysis revealed a series of technical failures: an incompatibility between their IPC input fields, the loss of the operations of the run -off borders and a logical error in its content. These cases were not the edge but the basic gaps for quality control.

Merrit Bayer, chief security officer in the upcoming security in Enkrypt Ai “The Crowdstrike Act was modest; we have mentioned that even the big mature stores are sometimes mistaken. This particular result was a coincidence at a level, but it should have been possible.

Its evaluation is direct, but it is fair: “If Crowdstrike put up the update in sand boxes and only sent it in production as best practices, it would have been less disastrous, at all.”

However, Bayer also admits to respond to the response of Crowdstrike: “Coldstrike Comms strategy has shown good executive. Executives must always take ownership – not the trainee’s mistake. If the beginners operator has made a mistake, this is my mistake. It is our mistake as a company.”

Stepness accountability

George Courts, founder and chairman of the Crowdstrike Company, has served as this principle of ownership. in LinkedIn post Thinking about the anniversary, Kurtz wrote: “One year ago, we faced the moment I tested everything: our technology, our operations, and the confidence that others put in us. As a founder and executive director, I bore this responsibility personally.

His point of view reveals how the company directed the crisis to a transformation: “What we have identified was not that moment; all that happened after that was. From the beginning, our focus was clear: building stronger crowds, based on steadfastness, transparency and implementation unabated. Our northern star has always been our customers.”

Groundstrike goes comprehensive on a new flexible through the design framework

Croldstrike’s response focused on the flexible design frame, which Sentonas describes as “rapid repairs or surface improvements.” The three columns of Framework, including the constituent, adaptive and continuous components, are a comprehensive rethinking of how security platforms work.

Main applications include:

• Self -recovery sensingAutomatically discovers the episodes of disruption and transformations to the safe situation
• New content distribution systemPublishing on the episode with automatic guarantees
• Promote customer control: The possibilities of granular update and content installation capabilities
• Digital Operations Center: A facility designed for this purpose to monitor global infrastructure
• Falcon Super LabTest thousands of operating system, corners and devices

“We have not only added some content composition options,” Strateonas confirmed on his blog. “We mainly rethink how customers interact with and control the security platforms.”

Wake the supply chain at the industry level

The accident was forced at a broader account about the dependency of the sellers. Bayer framing the lesson starkly: “One of the huge practical lessons was that your sellers are part of your supply chain. So, as CISO, you should test the risks to be aware of it, but just speaking, this problem fell on the side of the joint responsibility model. The customer was not controlling it.”

The Crowdstrike interruption has changed the seller’s evaluation permanently: “I see CISO and CSO effectively take lessons from this, about the companies they want to work with and the safety they receive as a producer to do business together. I will only work with the companies that I respect only from a security position lens. They do not need to be perfect, but I want to know that its right operations, during the appropriate time.”

Sam Curry, CISO in Zscaler, In addition to that “what happened to Crowdstrike was unfortunate, but it could have happened to many, so we may not blame them for the last perception. What I will say is that the world has used this to re -focus and notice more attention to flexibility as a result, and this is winning for everyone, as our collective goal is to make the Internet naive and safer.”

It emphasizes the need for a new safety model

Schreier’s analysis extends beyond Crowdstrike to the basic safety structure: “The speed comes widely at a cost. Every routine update now carries the weight of potential perceptual failure. This means more than the test, this means that the guarantees that are designed for flexibility: defenses with layers, automatic decline and guarantees that are assumed that remote measurement may disappear completely when you need to Most of them.

It addresses his most important vision for a scenario that many have not thought about looking at: “And when the measurement becomes dark, you need a failed confrontation that assumes that the vision may fade.”

This represents the transformation of the model. Also, a Brewn concludes: “Because today’s security is not only related to the removal of the attackers – it is about to ensure that your own systems never become a single failure point.”

We look forward to: Amnesty International and future challenges

Bayer believes that the following development has already arises: “Since the cloud enabled us to build using an infrastructure as a symbol, but now that Amnesty International has managed to make security differently, I look at how to make infrastructure decisions through independent updates through independent updates.

Crowdstrike initiatives include:

• Employment of a chief flexibility employee submits direct reports to the CEO
• Project climbing, exploring the capacity behind the area of Kerneel
• Cooperation with Microsoft on Windows Endpoint Security
• ISO 22301 Certificate for Business Continuity Management

A stronger environmental system

After one year, the shift is clear. “We are a stronger company today than we were a year ago. The work continues. The task is fading. We are moving forward: stronger, more intelligent and more committed to ever,” Curtz reflects.

Thanks to this, Kurtz also admits those who stand by the company: “For every customer who stayed with us, even when it was difficult, thank you for your constant confidence. To our amazing partners who stood by our side and refuted the sleeves, thank you for being our extended family.”

The legacy of the accident extends beyond Crowdstrike. Organizations are now implementing interim passes, maintaining the capabilities of manual transcendence, and – collectively – for the time of the security tools themselves fail. Sellers’ relationships are evaluated with a new strictness, with the realization that in our interconnected infrastructure, each component is very important.

Sentonas also admits: “This work has not ended and will never be. Flexibility is not a milestone; it is a specialty that requires continuous commitment and development.” The Crowdstrike incident, which occurred on July 19, 2024, will be remembered not only due to the turmoil it causes, but to stimulate the development at the level of industry towards real flexibility.

In the face of their greatest challenge, Crowdstrike and the broader security ecosystem emerged with a deeper understanding: protection from threats means ensuring that the mother -in -law themselves cannot harm. This lesson, which you have learned through 78 difficult minutes and a year of transformation, may prove that it is the inheritance of the most valuable accident.